11-20-2012 06:27 AM
Hello,
I am curious to know if there is a way to make a full tunnel for a L2L option. I need to have all Internet traffic go through a trusted Internet connection. I know I can do this doing GRE over IPSec but was hoping for an alternative solution.
Thanks in advance
-Chris
Solved! Go to Solution.
11-20-2012 06:49 AM
Hi Cristopher,
When you create a LAN-to-LAN tunnel you define protected traffic in the crypto ACL, so if you would like to send all the traffic across the LAN-to-LAN tunnel, then do the following:
hostname(config)# access-list l2l_list extended permit ip 192.168.0.0 255.255.0.0 any
hostname(config)# crypto map abcmap 1 match address l2l_list
Where 192.168.0.0/16 is your LAN.
HTH.
Portu.
Please rate any helpful posts
11-20-2012 06:49 AM
Hi Cristopher,
When you create a LAN-to-LAN tunnel you define protected traffic in the crypto ACL, so if you would like to send all the traffic across the LAN-to-LAN tunnel, then do the following:
hostname(config)# access-list l2l_list extended permit ip 192.168.0.0 255.255.0.0 any
hostname(config)# crypto map abcmap 1 match address l2l_list
Where 192.168.0.0/16 is your LAN.
HTH.
Portu.
Please rate any helpful posts
11-20-2012 11:03 AM
Thanks! That's what I thought but wanted to confirm.
Sent from Cisco Technical Support iPhone App
11-20-2012 11:24 AM
You are very welcome
Further information:
HTH.
Portu.
Please rate any helpful posts
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: